CVE-2023-48707 | CodeIgniter4 Shield up to 1.0.0-beta.7 HMAC SHA256 cleartext storage

Posted by Angelo Barbosa | Nov 24, 2023 | CVE

A vulnerability classified as problematic was found in CodeIgniter4 Shield up to 1.0.0-beta.7. Affected by this vulnerability is an unknown functionality of the component HMAC SHA256 Handler. The manipulation leads to cleartext storage of sensitive information.

This vulnerability is known as CVE-2023-48707. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-48707 | CodeIgniter4 Shield up to 1.0.0-beta.7 HMAC SHA256 cleartext storage

Related Posts

CVE-2024-44796 | PicUploader fcf82ea /auth/AzureRedirect.php error_description cross site scripting (ID 90)

CVE-2023-6583 | Import and Export Users and Customers Plugin up to 1.24.2 on WordPress Recurring Import path traversal

CVE-2024-22715 | Stupid Simple CMS up to 1.2.4 /admin-edit.php cross-site request forgery

CVE-2023-52193 | Live Composer Team Page Builder Plugin up to 1.5.23 on WordPress cross site scripting